[ http://jira.jboss.com/jira/browse/JBAS-1473?page=history ]
Scott M Stark closed JBAS-1473:
-------------------------------
Resolution: Done
The password based login modules now support a digestCallback option which
specifies an implementation of the org.jboss.crypto.digest.DigestCallback
interface:
/**
* An interface that can be used to augment the behavior of a digest hash.
* One example usecase is with the password based login modules to
* modify the behavior of the hashing to introduce prefix/suffix salts.
*
* @author [EMAIL PROTECTED]
* @version $Revision: 1.1 $
*/
public interface DigestCallback
{
/** Pass through access to the login module options. When coming from a
* login module this includes the following keys:
* javax.security.auth.login.name - for the username
* javax.security.auth.login.password - for the String password
*/
public void init(Map options);
/**
* Pre-hash callout to allow for content before the password. Any content
* should be added using the MessageDigest update methods.
* @param digest - the security digest being used for the one-way hash
*/
public void preDigest(MessageDigest digest);
/** Post-hash callout afer the password has been added to allow for content
* after the password has been added. Any content should be added using the
* MessageDigest update methods.
* @param digest - the security digest being used for the one-way hash
*/
public void postDigest(MessageDigest digest);
}
> Add support for customization of the login module password hash mechanism
> -------------------------------------------------------------------------
>
> Key: JBAS-1473
> URL: http://jira.jboss.com/jira/browse/JBAS-1473
> Project: JBoss Application Server
> Type: Feature Request
> Components: Security
> Reporter: Scott M Stark
> Assignee: Scott M Stark
> Fix For: JBossAS-5.0 Alpha, JBossAS-4.0.2 Final
>
> Original Estimate: 1 day
> Remaining: 1 day
>
> A generic extension to add a DigestCallback extension interface like the
> following should be made to the jboss login modules:
> public interface DigestCallback
> {
> /** Pass through access to the login module options */
> public void init(java.util.Map options);
> /** Pre-hash callout to allow for content before the password */
> public void preDigest(java.security.MessageDigest digest);
> /** Post-hash callout afer the password has been added to allow for
> content after the password */
> public void postDigest(java.security.MessageDigest digest);
> }
> options: the option maps passed to the login module with any unknown options
> that affect the DigestCallback simply passed through
> digest: the standard MessageDigest created based on the digest algorithm
> specified via the login module options.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
If you want more information on JIRA, or have a bug to report see:
http://www.atlassian.com/software/jira
-------------------------------------------------------
This SF.net email is sponsored by Demarc:
A global provider of Threat Management Solutions.
Download our HomeAdmin security software for free today!
http://www.demarc.com/info/Sentarus/hamr30
_______________________________________________
JBoss-Development mailing list
JBoss-Development@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-development
